SSL Certificates
The following table shows further information as well as a list of malware samples including the corresponding botnet C&C associated with the SSL certificate fingerprint 904495e30122d37a39063bcb10baeedb3bca3ae8.
Database Entry
| SHA1 Fingerprint: | 904495e30122d37a39063bcb10baeedb3bca3ae8 |
|---|---|
| Certificate Common Name (CN): | koalashelp.au |
| Issuer Distinguished Name (DN): | koalashelp.au |
| TLS Version: | SSLv3 |
| First seen: | 2015-06-29 11:45:37 UTC |
| Last seen: | 2015-06-30 23:19:10 UTC |
| Status: | Blacklisted |
| Listing reason: | Dridex C&C |
| Listing date: | 2015-06-29 12:35:39 |
| Malware samples: | 4 |
| Botnet C&Cs: | 1 |
Malware Samples
The table below documents all malware samples associated with this SSL certificate.
| Timestamp (UTC) | Malware Sample (MD5 hash) | VT | Signature | Botnet C&C (IP:port) |
|---|---|---|---|---|
| 2015-06-30 23:19:10 | 1a082d330339c083f81f17d0201ec4e0 |  5/55 (9.09%)
| Dridex | 78.47.139.58:843 |
| 2015-06-30 23:19:10 | 1a082d330339c083f81f17d0201ec4e0 | 5/55 (9.09%)
| Dridex | 78.47.139.58:843 |
| 2015-06-30 13:33:31 | e704ff948e791ad67d2c46238629335d | 4/55 (7.27%)
| Dridex | 78.47.139.58:843 |
| 2015-06-30 13:33:31 | e704ff948e791ad67d2c46238629335d | 4/55 (7.27%)
| Dridex | 78.47.139.58:843 |
| 2015-06-29 13:47:48 | 65520ecd513c8b8b75f601aa2e69aeef | 4/55 (7.27%)
| Dridex | 78.47.139.58:843 |
| 2015-06-29 13:47:48 | 65520ecd513c8b8b75f601aa2e69aeef | 4/55 (7.27%)
| Dridex | 78.47.139.58:843 |
| 2015-06-29 11:45:37 | d004080205833010944de097d0531ab0 | 2/55 (3.64%)
| Dridex | 78.47.139.58:843 |
| 2015-06-29 11:45:37 | d004080205833010944de097d0531ab0 | 2/55 (3.64%)
| Dridex | 78.47.139.58:843 |
# of entries: 8 (max: 100)